Botconf Author Listing

Anthony Kasza


Last known affiliation: John Henry Solutions

Date: 2017-12-08
Formatting for Justice: Crime Doesn’t Pay, Neither Does Rich Text
Anthony Kasza 🗣

Abstract (click to view)

Due to it’s flexibility and capacity for embedding other objects, the rich text format (RTF) is a preferred file type used by both precision and quantity focused threat actors. This presentation will discuss the state of threats making use of the file format and provide a brief overview of how the file format is constructed. The presentation will also explain results of exploratory experiments conducted to achieve a deep comprehension of the file format’s structure. Best practices for building protections in organizations will be discussed. Techniques developed while hunting for specific features across large sample sets will be shared.

Slides Icon
PDF
Scroll to Top